FBI probes cyber-attack emails sent from internal server
The FBI has launched an investigation after thousands of fake email messages were sent from one of its servers warning of a possible cyber-attack.
The government agency said the incident on Saturday morning was part of an “ongoing situation”, but provided no further details.
The messages purported to be from the US Department of Homeland Security.
They claimed to be a warning about a supposed threat and were titled: “Urgent: Threat actor in systems.”
The emails told recipients that they were the target of a “sophisticated chain attack” from an extortion group known as the Dark Overlord, according to the non-profit anti-spam watchdog Spamhaus.
“They are causing a lot of disruption because the headers are real, they really are coming from FBI infrastructure,” Spamhaus tweeted, adding that they did not include names or contact information from the sender.
According to US media reports, more than 100,000 emails were sent out.
In a statement on Saturday, the FBI said it was “aware of the incident this morning involving fake emails from an @ic.fbi.gov email account“.
The agency said the affected hardware was quickly taken offline after the issue was detected and warned the public to be “cautious of unknown senders” and to report suspicious activity to the government.
While the emails were obviously warning about a fake threat, they caused panic among some recipients because the messages passed SPF and DKIM security checks, meaning they were sent from the actual FBI servers and passed spam filters.
With thanks to the BBC. The full story is here: https://www.bbc.co.uk/news/world-us-canada-59278277
Free Phishing Security Test
Would your users fall for convincing phishing attacks? Take the first step now and find out before bad actors do. Plus, see how you stack up against your peers with phishing Industry Benchmarks. The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.
Here’s how it works:
- Immediately start your test for up to 100 users (no need to talk to anyone)
- Select from 20+ languages and customize the phishing test template based on your environment
- Choose the landing page your users see after they click
- Show users which red flags they missed, or a 404 page
- Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
- See how your organization compares to others in your industry
PS: Don’t like to click on redirected buttons? Cut & Paste this link in your browser: https://info.knowbe4.com/phishing-security-test-partner?partnerid=001a000001lWEoJAAW